Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/AVHanjbXfgyqNy2E0vhNC_ZXKqI.roa
File: AVHanjbXfgyqNy2E0vhNC_ZXKqI.roa (raw, json)
Hash identifier: DWCYWx/VJ/gcTVX3u+LhLu3Z53BfsiB85vSAFDKDm7c=
Subject key identifier: 01:51:DA:9E:36:D7:7E:0C:AA:37:2D:84:D2:F8:4D:0B:F6:57:2A:A2
Certificate issuer: /CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Certificate serial: 01873225400F5296DE81C871A0326729C7BB
Authority key identifier: 75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/AVHanjbXfgyqNy2E0vhNC_ZXKqI.roa
Signing time: Thu 30 Mar 2023 10:51:54 +0000
ROA not before: Thu 30 Mar 2023 10:51:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393960
IP address blocks: 185.177.228.0/24 maxlen: 24
185.177.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:32:25:40:0f:52:96:de:81:c8:71:a0:32:67:29:c7:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7554ac4c7f451c5bb9382fbcd46d70c4c0f9de56
Validity
Not Before: Mar 30 10:51:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0151da9e36d77e0caa372d84d2f84d0bf6572aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:27:c3:b7:56:52:d7:a3:d8:c4:8f:de:a0:0b:
cf:eb:4e:89:e7:a2:b0:3b:d2:4e:8d:f5:6e:e5:ec:
ca:93:40:58:99:f7:7c:7c:89:7c:99:25:71:31:ff:
21:43:c8:57:1a:e5:a4:b8:83:dc:83:35:52:4c:6c:
c2:99:6e:e8:78:8e:1a:fe:7d:6b:32:72:78:ed:a5:
ea:e2:68:7d:1d:03:58:3a:af:a2:54:2b:a1:8c:04:
85:d2:0a:72:e9:b4:6f:67:7b:85:ab:20:f5:d5:a4:
9e:14:fa:66:9f:48:71:0f:8b:a2:54:8c:d6:ae:c9:
7d:f7:c9:3a:e4:ed:56:68:80:d1:77:97:0b:99:21:
77:78:45:f1:3a:ae:26:32:59:95:c0:d7:f6:36:48:
a4:f7:3d:80:65:d5:5c:a4:0c:59:41:b8:f6:f9:7c:
38:b5:44:87:27:c3:15:94:bc:cf:3e:43:dc:fc:f3:
ab:16:39:32:23:b9:77:41:73:0f:1d:db:30:d3:9b:
af:f1:e9:01:19:34:f3:fc:73:37:93:12:c4:c4:dc:
a8:7c:3f:1a:c0:d4:33:e9:53:1a:ae:c6:89:4d:60:
de:2f:95:91:c5:e9:c4:5c:00:cf:d5:e1:14:c4:5c:
a1:fc:d9:a1:6b:cd:a2:d3:c8:23:00:13:07:4a:76:
3f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:51:DA:9E:36:D7:7E:0C:AA:37:2D:84:D2:F8:4D:0B:F6:57:2A:A2
X509v3 Authority Key Identifier:
keyid:75:54:AC:4C:7F:45:1C:5B:B9:38:2F:BC:D4:6D:70:C4:C0:F9:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVSsTH9FHFu5OC-81G1wxMD53lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/AVHanjbXfgyqNy2E0vhNC_ZXKqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/87a00a-b6f6-4721-a828-d9337db39d1f/1/dVSsTH9FHFu5OC-81G1wxMD53lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.228.0/24
185.177.231.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:3c:18:06:8d:e0:5c:38:95:14:30:aa:d2:b6:c2:1e:ec:cd:
d7:21:8c:0c:63:3d:f7:a1:0d:d6:2b:3a:55:0f:a6:a5:c2:05:
09:08:6e:24:82:cf:f7:66:d4:35:25:e2:c5:57:80:38:eb:b2:
f6:f1:ef:4b:9a:21:29:c0:62:e7:6f:53:25:2d:32:c9:7a:19:
3f:f9:09:97:b3:50:53:1f:c2:d3:0d:d7:9a:3d:f0:af:ad:1e:
b4:1f:9b:5c:e8:c2:8a:ac:d1:0a:b1:ea:b8:2a:12:f7:9d:a3:
95:ad:60:29:e8:91:c9:39:0d:2b:91:94:41:72:97:be:b8:88:
cf:ce:e1:f3:39:d2:36:e1:b9:9a:e4:78:96:e8:5f:2e:71:ea:
13:e8:7a:85:fc:a7:51:52:0d:63:17:cc:10:1f:3e:4e:d9:cf:
50:52:58:1f:95:c7:01:dd:1b:55:35:89:da:4e:ae:6d:36:7a:
6b:b9:2e:70:ee:32:df:96:64:2b:1a:92:66:3d:ef:67:61:d7:
c3:38:89:e1:ca:86:33:1f:b5:b0:84:6a:52:d6:e4:64:23:80:
45:2a:7e:79:3f:ad:93:3b:a7:a6:45:46:2b:8c:58:56:d4:9f:
2b:6e:a8:8c:41:9f:91:52:3d:8d:c3:21:ce:44:7a:44:dc:07:
dc:c4:53:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:26 2025 by rpki-client